Cybersecurity Analyst Continuous Improvement
Resume:
PREETI MOHAPATRA
Pune, Maharashtra, India
Email: *****************@*****.*** Phone: +91-777******* LinkedIn: linkedin.com/in/preeti-mohapatra-9b9101180 Notice Period: 15 Days or Less
SUMMARY
Certified GRC Cybersecurity Analyst with 4+ years of experience across risk management, audit compliance, and third-party risk assessments. Proven expertise in ISO 27001:2022, NIST CSF, ServiceNow GRC, RSA Archer, and SOC 2 implementation. Adept at bridging technical and business risk through structured audit readiness, M&A security evaluation, and TPRM lifecycle governance. Transitioned from QA and Blockchain roles into core cybersecurity delivery, with hands-on execution and presales exposure. CORE COMPETENCIES
• Cybersecurity & GRC Frameworks: ISO 27001:2022, ISO 27005, NIST CSF, SOC 2, GDPR, HIPAA, NIS2
• GRC Tools: ServiceNow GRC, RSA Archer, MetricStream, AuditBoard, LogicGate
• Risk & Compliance: TPRM, Risk Register Development, Control Testing, Audit Lifecycle Management
• Cloud & Infra Security: AWS/GCP/Azure Security Best Practices, Shared Responsibility, Cloud Risk Readiness
• Security Domains: Data Security, IAM, Network Security, OT/IoT Risk, Application Security
• Emerging Tech: DevSecOps, Blockchain Security, AI-Augmented Risk Intelligence
• Presales & Solutioning: RFP/RFI Response Support, Security Control Mapping, Client Workshops
• Certifications: ISO 27001 Lead Auditor, Cybrary Cybersecurity, Microsoft Cybersecurity Learn
EXPERIENCE
Senior GRC Cybersecurity Analyst
Nanjgel Solutions Pune Apr 2025 – Present
• Spearheaded ISO 27001:2022 compliance for SaaS clients with multi-cloud environments (AWS, Azure)
• Delivered TPRM lifecycle design using ServiceNow GRC; reduced onboarding cycle by 40%
• Conducted M&A cyber due diligence for fintech firm; identified data transfer gaps post-integration
• Created executive-level dashboards in Archer for audit readiness, KPIs, and remediation tracking
GRC Analyst
AptivaCorp Pune Aug 2023 – Oct 2023
• Led HIPAA and NIST CSF implementation in ServiceNow GRC and MetricStream
• Designed evidence collection matrix for SOC 2 and ISO audits; reduced control mapping time by 60%
GRC Consultant (Freelance)
TalkToAnalyst.com Remote Jan 2023 – Jun 2023
• Delivered risk sections for cybersecurity, blockchain, and AI-based RFPs
• Contributed to government and startup tender responses involving GRC components Senior Cybersecurity Analyst
Mphasis Pune May 2022 – Jan 2023
• Conducted multi-domain risk assessments; aligned with ISO 27005 and NIST RMF
• Collaborated with InfoSec and AppSec teams to remediate non-compliance items Cybersecurity Analyst
Concentrix Pune Nov 2020 – May 2022
• Supported full-cycle ISO/NIST audits for global clients across cloud and hybrid infra
• Initiated pre-sales security solution demos for client audit readiness Blockchain Developer
Idealabs FutureTech Ventures Remote Jul 2020 – Nov 2020
• Developed smart contracts on Ethereum and Hyperledger; explored cybersecurity impact
QA Engineer
Tech Mahindra Pune Aug 2019 – Apr 2020
• Manual and automation QA with exposure to AppSec best practices Co-Founder / Tech Writer (Freelance)
DARQhour Research Remote Apr 2020 – Jun 2020
• Authored technical whitepapers on blockchain, AI ethics, and compliance frameworks PROJECT HIGHLIGHTS
Cybersecurity GRC Projects Nanjgel Solutions
Apr 2025 – Present
• TPRM implementation via SNOW GRC (40% onboarding cycle reduction)
• ISO 27001:2022 audit support across Azure-hosted workloads
• Risk matrix design and control effectiveness scorecards for internal audits NIST + SOC 2 Automation AptivaCorp
Aug 2023 – Oct 2023
• Control mapping via MetricStream
• HIPAA readiness and evidence register tracking for SOC 2 phase Blockchain Security POCs
Jul 2020 – Nov 2020
• Explored secure contract design patterns
• Researched quantum-resilient models integrated with compliance frameworks CERTIFICATIONS
• ISO 27001 Lead Auditor – The Knowledge Academy View Certificate
• Microsoft Cybersecurity Learn – Microsoft
• Cybrary Cybersecurity Courses – Cybrary
• Google IT Support Professional Certificate – Google
• Cisco Networking Basics – Cisco Networking Academy
• Certified Blockchain Developer – Idealabs / FutureTech EDUCATION
Bachelor of Computer Applications (BCA)
Savitribai Phule College of Education for Women, Pune 2016 – 2019 TECHNICAL SKILLS
Category Tools/Technologies
GRC Platforms ServiceNow GRC, RSA Archer, MetricStream Audit Frameworks ISO 27001:2022, SOC 2, NIST CSF, GDPR, HIPAA Security Domains IAM, TPRM, Network Security, Cloud Security Cloud Platforms AWS, Azure, GCP
Emerging Tech Blockchain (Ethereum, Hyperledger), DevSecOps Other Tools JIRA, Confluence, Excel Macros, Power BI LANGUAGES
• English – Full Professional Proficiency
• Hindi – Native Proficiency
CAREER INTERESTS
• Preferred Roles: GRC Analyst, Cybersecurity Consultant, Risk & Compliance Specialist
• Preferred Locations: Pune, Bengaluru, Remote
• Availability: 15 Days or Less
• Salary Expectation: Open to market standards
Contact this candidate